Vendor CVEs
Libgig0
All CVEs
23 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-18197 | Cri | 0.64 | 9.8 | 0.01 | Oct 9, 2018 | An issue was discovered in libgig 4.1.0. There is an operator new[] failure (due to a big pSampleLoops heap request) in DLS::Sampler::Sampler in DLS.cpp. | ||
| CVE-2018-18196 | Hig | 0.57 | 8.8 | 0.01 | Oct 9, 2018 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in RIFF::List::GetListTypeString in RIFF.cpp. | ||
| CVE-2018-18194 | Hig | 0.57 | 8.8 | 0.01 | Oct 9, 2018 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in DLS::Region::GetSample() in DLS.cpp. | ||
| CVE-2018-18193 | Hig | 0.57 | 8.8 | 0.01 | Oct 9, 2018 | An issue was discovered in libgig 4.1.0. There is operator new[] failure (due to a big pWavePoolTable heap request) in DLS::File::File in DLS.cpp. | ||
| CVE-2018-14459 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in pData[0] access in the function store16 in helper.h. | ||
| CVE-2018-14458 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in pData[1] access in the function store32 in helper.h. | ||
| CVE-2018-14457 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in the function DLS::Info::UpdateChunks in DLS.cpp. | ||
| CVE-2018-14456 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in the function DLS::Info::SaveString in DLS.cpp. | ||
| CVE-2018-14455 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in pData[0] access in the function store32 in helper.h. | ||
| CVE-2018-14454 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the function RIFF::Chunk::Read in RIFF.cpp. | ||
| CVE-2018-14453 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in pData[1] access in the function store16 in helper.h. | ||
| CVE-2018-14452 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the "always assign the sample of the first dimension region of this region" feature of the function gig::Region::UpdateChunks in gig.cpp. | ||
| CVE-2018-14451 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in the function RIFF::Chunk::Read in RIFF.cpp. | ||
| CVE-2018-14450 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the "update dimension region's chunks" feature of the function gig::Region::UpdateChunks in gig.cpp. | ||
| CVE-2018-14449 | Hig | 0.57 | 8.8 | 0.01 | Jul 20, 2018 | An issue was discovered in libgig 4.1.0. There is an out of bounds read in gig::File::UpdateChunks in gig.cpp. | ||
| CVE-2017-12954 | Med | 0.46 | 6.5 | 0.04 | Aug 28, 2017 | The gig::Region::GetSampleFromWavePool function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted gig file. | ||
| CVE-2017-12953 | Med | 0.46 | 6.5 | 0.04 | Aug 28, 2017 | The gig::Instrument::UpdateRegionKeyTable function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service (invalid memory write and application crash) via a crafted gig file. | ||
| CVE-2017-12952 | Med | 0.46 | 6.5 | 0.04 | Aug 28, 2017 | The LoadString function in helper.h in libgig 4.0.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted gig file. | ||
| CVE-2017-12950 | Med | 0.46 | 6.5 | 0.05 | Aug 28, 2017 | The gig::Region::Region function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted gig file. | ||
| CVE-2017-12951 | Med | 0.45 | 6.5 | 0.03 | Aug 28, 2017 | The gig::DimensionRegion::CreateVelocityTable function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted gig file. | ||
| CVE-2018-18195 | Med | 0.42 | 6.5 | 0.01 | Oct 9, 2018 | An issue was discovered in libgig 4.1.0. There is an FPE (divide-by-zero error) in DLS::Sample::Sample in DLS.cpp. | ||
| CVE-2018-18192 | Med | 0.42 | 6.5 | 0.01 | Oct 9, 2018 | An issue was discovered in libgig 4.1.0. There is a NULL pointer dereference in the function DLS::File::GetFirstSample() in DLS.cpp. | ||
| CVE-2021-32294 | 0.00 | — | 0.01 | Sep 20, 2021 | An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution. |
- risk 0.64cvss 9.8epss 0.01
An issue was discovered in libgig 4.1.0. There is an operator new[] failure (due to a big pSampleLoops heap request) in DLS::Sampler::Sampler in DLS.cpp.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in RIFF::List::GetListTypeString in RIFF.cpp.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is a heap-based buffer over-read in DLS::Region::GetSample() in DLS.cpp.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is operator new[] failure (due to a big pWavePoolTable heap request) in DLS::File::File in DLS.cpp.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in pData[0] access in the function store16 in helper.h.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in pData[1] access in the function store32 in helper.h.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in the function DLS::Info::UpdateChunks in DLS.cpp.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in the function DLS::Info::SaveString in DLS.cpp.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is an out-of-bounds write in pData[0] access in the function store32 in helper.h.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the function RIFF::Chunk::Read in RIFF.cpp.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in pData[1] access in the function store16 in helper.h.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the "always assign the sample of the first dimension region of this region" feature of the function gig::Region::UpdateChunks in gig.cpp.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is a heap-based buffer overflow in the function RIFF::Chunk::Read in RIFF.cpp.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is an out-of-bounds read in the "update dimension region's chunks" feature of the function gig::Region::UpdateChunks in gig.cpp.
- risk 0.57cvss 8.8epss 0.01
An issue was discovered in libgig 4.1.0. There is an out of bounds read in gig::File::UpdateChunks in gig.cpp.
- risk 0.46cvss 6.5epss 0.04
The gig::Region::GetSampleFromWavePool function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted gig file.
- risk 0.46cvss 6.5epss 0.04
The gig::Instrument::UpdateRegionKeyTable function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service (invalid memory write and application crash) via a crafted gig file.
- risk 0.46cvss 6.5epss 0.04
The LoadString function in helper.h in libgig 4.0.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted gig file.
- risk 0.46cvss 6.5epss 0.05
The gig::Region::Region function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted gig file.
- risk 0.45cvss 6.5epss 0.03
The gig::DimensionRegion::CreateVelocityTable function in gig.cpp in libgig 4.0.0 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted gig file.
- risk 0.42cvss 6.5epss 0.01
An issue was discovered in libgig 4.1.0. There is an FPE (divide-by-zero error) in DLS::Sample::Sample in DLS.cpp.
- risk 0.42cvss 6.5epss 0.01
An issue was discovered in libgig 4.1.0. There is a NULL pointer dereference in the function DLS::File::GetFirstSample() in DLS.cpp.
- CVE-2021-32294Sep 20, 2021risk 0.00cvss —epss 0.01
An issue was discovered in libgig through 20200507. A heap-buffer-overflow exists in the function RIFF::List::GetSubList located in RIFF.cpp. It allows an attacker to cause code Execution.